The Secret Security Wiki

Categories
Categories

Stateful Cloud

Stateful protocols are all about recording session activity.

Stateful cloud platforms use cookies to validate through Session Based Authentication during which the server will create a session for the user following his or her login. The session ID is then stored on a cookie on the user’s browser. For the entire duration of the user’s session, the cookie containing the digital ID data is transmitted along with every request. The server can then compare the session ID stored on the cookie against the session information stored in the device’s memory to verify the user’s identity.

Stateful clouds ask the web service for two things:

  • Who is making the request
  • Using the stored cookie how will the webpage requested look like

Stasteful cloud - secret double octopus